How has it helped my organization?
Quickly got insight into my environment.
What is most valuable?
Deployment was very easy. I got my servers and devices reporting very quickly.
What needs improvement?
It would be great if there was a feature to add in watch lists, like McAfee or QRadar have -- to keep track of IPs, domain, etc. that I have identified as being malicious.
Also, being able to connect into other TAXII/STIX feeds other than OTX.
How are customer service and technical support?
Excellent. Customer service was very responsive.
Excellent. Support was very responsive.
Which solution did I use previously and why did I switch?
Yes, McAfee ESM. Even after upgrading to Version 10, the interface was still hard to navigate through and did not work on every browser. Writing effective rules was difficult.
How was the initial setup?
What about the implementation team?
What's my experience with pricing, setup cost, and licensing?
Very reasonable and for the value of the product, we couldn't ask for better pricing.
Which other solutions did I evaluate?
We did a SIEM solution comparison with McAfee ESM, IBM QRadar, and Fortinet.
Which version of this solution are you currently using?
Find out what your peers are saying about AT&T, Splunk, LogRhythm and others in Security Information and Event Management (SIEM). Updated: July 2021.
522,281 professionals have used our research since 2012.